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Amendment * *n frc maims: 

This listing of claims will replace all prior versions, and listings, of claims in the application: 

Listing of Claims: 

1. (Currently amended) A computer implemented m ethod in a data processing system for 
automatically configuring CP security tunnels, said computer implemented m ethod comprising the steps 
of: 

retrieving exchanging identification data with a remote computer system j4?ntifier; 

determining , baa e d on the identification data? whether a local -remo te pair corresponding to the 
identifier is found, wherein the local-remote nair is us ed in selecting a security policy, and wherein an 
error is reported indicating that a user needs to configure a tunnel with the rem ote computer system if the 
local-remote pair is not found e-prodofinod s e curity -policy exists oorrcopondiTig to th e r e moto computer 
systftttij Qnd 

Bptooting a oecurity policy op a cification format capabl e of being utilized by o plurality of diff e rent 
operating oyatcmo and a plurality of different machin e types if a predefined c.oourity policy io abaont; and 

defining a configuration of an IP security tunnel between the data processing system and the 
remote computer system utilizing [[said]] ^.security policy specification format, wherein said seyymtY 
policy specification format is established as a document type definition ( DTD^ file capable of being 
yfiligied by a plurality of different operating systems and a plurality of different machine typ es. 

2. (Currently amended) The method according to claim 1 » wherein said TYTT) file defines a 
gojlectitm of elements, and further comprising: 

generating an XML file utilizing the collection of elements defined in said DTD file, wherein said 
XML file defines a configuration of a particular IP security tunnel and wherein said XML file is 
processed to automatically configure said IP security tunnel defined bvtfae XML file e atabhshing a 
security policy opacification format capabl e of being utilised by c plurality of diff e rent operating ayot e mo 
and a plurality of different maohino typ es ; and 

estab lishing a aid s e curity policy op a cification format as o DTD filo . 

3. (Currently amended) The method according to claim [[2]] i, further comprising the step of 
including a plurality of different elements in said DTD file, each of said plurality of different elements 
being utilized to configure an IP security tunnel. 
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4. (Previously Presented) The method according to claim 3, further comprising the steps of: 
generating an XML file utilizing a plurality of said plurality of different elements included within 

said DTD file; and 

processing said XML file to automatically configure an IP security tunnel. 

5 . (Original) The method according to claim 1, further comprising the step of including a root 
element in ssid security policy specification format. 

6. (Original) The method according to claim 1 , further comprising the step of establishing a 
protection element in said security policy specification format, said protection element including a listing 
of IKE transforms. 

7. (Original) The method according to claim 1 , further comprising the step of establishing a 
transform element in said security policy specification format. 

8. (Currently amended) The method according to claim 1, further comprising the step of 
establishing a group element in said security policy specification format wherein said group element 
contains multiple identification elements . 

9. (Original) The method according to claim 1, further comprising the step of establishing an 
identification element in said security policy specification format. 

10. (Original) The method according to claim 1, further comprising the step of establishing a tunnel 
element in said security policy specification format. 

1 1 . (Original) The method according to claim 1 , further comprising the step of establishing a root 
element, a protection element, a transform element, a group element, an identification element, a tunnel 
element, a local/remote identify element, an ID type element, an ID definition element, a pre-shared key 
element, an IPsec proposal element, an IPsec ESP protocol element, an IPsec authentication header 
element, and an IPsec protection element in said security policy specification format. 

12. (Original) The method according to claim 1, further comprising the step of automatically 
configuring an TP security tunnel utilizing said security policy specification format 
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13. (Original) The method according to claim 1, further comprising the step of comparing a first IP 
security tunnel to a second IP security tunnel utilizing a first security policy specification format that is 
associated with &aid first IP security tunnel and a second security policy specification format that is 
associated with a second IP security tunnel. 

1 4, (Currently amended) A computer program product comprising; 

a computer uoobl e readable m edium having computer usable program code for defining a 
configuration of IP security tunnels in a data pro cessing system, comprising; 

computer usable program code for retrieving oxohonsdng identification data with a remote 
computer system identifier : 

computer uBable program code for determinin g, baaod on th e identification data, whether & top*!- 
remote pair corresponding to the identifier is found, wherein t he local-remote pair is used in gdwtmg a 
security policy, and wherein an error is reported indicating that a user needs to configure a tunnel wifc the 
remote computer system if the local-remote pair is not found a predefined ooourity polioy exists 
po r ro op o n din E t n thr i rnmottt tmrnrrntAi 1 nyntftm ; 

oomputor usable program oodo for o c l e oting a soourity policy sp e cification format capabl e of 
being utilised by a plurality of diffowmt operating cystoma o«d a plurality of differ e nt machin e typ e o if a 
pr e d e fin e d security poltoy is absent^ 

computer usable program code for automatically configuring an IP security tunnel between the 
data processing system and the remote computer system utilizing [[said]] a security policy specification 
forma t, wherein said security policy specification format is establis hed as a document tvne definition 
(OTTO file capable of beinp utilized bv a plurality of different o perating systems and a plurality of 
different machine types. 

15. (Currently amended) Th» pmriwrt ncnm-riiTift claim 1 4. wherein said DTD file defines a 
collection of elements, and further comprising; 

generating an XML file utilizing the collection of elements de fined in said DTD file, wherein said 
XML file defines a configuration of a particular IP security t unnel, and wherein said XML file is 
processed to automatically configure said IP security tun n el defined bv the XML file computer ucabl e 
preffa m cod e for establishing a s e curity policy apooifioation format capabl e of being utili ee d by o 
plurality of different op e rating ays temp and a plurality of different maohino typonj and 

oomputor mxtbl e program cod e for eombli&hing said goeurity pol i oy op e cifioatjon foraiat ao o 

TYTT> fjln 
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16. (Previously Presented) The product according to claim 14, flatter comprising computer usable 
program code for including a plurality of different elements in said DTD file, each of said plurality of 
different elements being utilized to configure an IP security tunnel. 

1 7 . (Previously Presented) The product according to claim 1 6, further comprising: 

computer usable program code for generating an XML file utilizing a plurality of said plurality of 
different elements included within said DTD file; and 

computer usable program code for processing said XML file to automatically configure an IP 
security tunnel. 

1 8. (Previously Presented) The product according to claim 14, further comprising computer usable 
program code for including a root element in said security policy specification format. 

19. (Previously Presented) The product according to claim 14, further comprising computer usable 
program code for establishing a protection element in said security policy specification format, said 
protection element including a li sting of IKE transforms. 

20. (Previously Presented) The product according to claim 14, further comprising computer usable 
program code for establishing a transform element in said security policy specification format. 

2 1 . (Currently amended) The product according to claim 14 p further comprising computer usable 
program code for establishing a group element in said security policy specification format, wherein said 
group element contains multiple identification elements . 

22. (Previously Presented) The product according to claim 14, further comprising computer usable 
program code for establishing an identification element in said security policy specification format. 

23. (Previously Presented) The product according to claim 14, further comprising computer usable 
program code for establishing a turmel element in said security policy specification format. 

24. (Previously Presented) The product according to claim 14, further comprising computer usable 
program code for establishing a root element, a protection element, a transform element, a group element, 
an identification element, a tunnel element, a local/remote identify element, an ID type element, an ID 
definition element, a pre-shared key element, an IPsec proposal element, an IPsec ESP protocol element, 
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an IPsec authentication header element, and an IP sec protection element in said security policy 
specification format, 

25. (Previously Presented) The product according to claim 14, further comprising computer usable 
program code for automatically configuring an IP security tunnel utilizing said security policy 
specification format. 

26. (Previously Presented) The product according to claim 14, further comprising computer usable 
program code for comparing a first IP security tunnel to a second IP security tunnel utilizing a first 
security policy specification format that is associated with said first IP security tunnel and a second 
security policy specification format that is associated with a second IP security tunnel 

27. (Currently amended) A data processing system for automatically configuring IP security tunnels, 
comprising; 

a computer; 

a computer readable medium containing computer readable instructions, wherein the computer 
executes the computer readable instructions to retrieve oxohango identification data with a remote 
computer system identifier: determine whether a local^remote pair corresponding to the identifier is 
found, wherein the local-remote pair is used in selecting a security policy, and wherein an error is 
reported indicating that a user needs to configure a tunnel with the remote computer sv atem if the local- 
remote pair is not found a pred e fin e d security policy cftiota corr e sponding to th e remote computer flyotem; 
and ooloot a o e ourity policy cpooifioQtion format oapablo of being utiliz e d by a plurality of different 
operating oyotcmo and a plurality of different machine types if a pr e d e fin e d security policy is absent; and 
said syotem for automatically configurelTingll an IP security tunnel between the data processing system 
and the remote computer system utilizing [[saidl] s_security policy specification format , wherein said 
security policy specification format is established as a document type definition fDTPl file capable of 
Hemp utilized bv a plurality of different operating systems and a plurality of different machine types . 

28. (Currently amended) The system according to claim 27, wherein said DTD file defines. a 
collection of elements, and further comprising: 

generating an XML file utilizing the collection of elements defined in said DTD file, wherein said 
XML file defines a configuration of a particular IP secu rity tunnel, and wherein said XML file is 
processed to automatically configure said IP security tunnel defined bv the XML file o - seourity policy 
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gpooifioation format capable of b e ing utilised by a plurality of differ e nt operating ayptomo and o plurality 
of diff e r e nt maohin e types boing ootabliohod j and 

wtid GDouyity policy specification format being oatoblinh e d qp a DTB 4fle. 

29, (Currently amended) The system according to claim 21 [[28]], further comprising a plurality of 
different elements being included in said DTD file, each of said plurality of different elements being 
utilized to configure an IP security tunnel. 

30. (Previously Presented) The system according to claim 29, further comprising: 

an XML file being generated utilizing a plurality of said plurality of different elements included 
within said DTD file; and 

said system for processing said XML file to automatically configure an IP security tunnel. 

3 1 * (Original) The system according to claim 27 f further comprising a root element being included in 
said security policy specification format. 

32. (Original) The system according to claim 27, further comprising a protection element being 
included in said security policy specification format, said protection element including a listing of IKE 
transforms. 

33 . (Original) The system according to claim 27, further compri sing a transform element being 
included in said security policy specification format. 

34. (Currently amended) The system according to claim 27, further comprising a group element 
being included in said security policy specification forma t wherein said group elem ent cont ains multiple 
identification elements . 

35. (Original) The system according to claim 27, further comprising an identification element being 
included in said security policy specification format. 

36. (Original) The system according to claim 27, further comprising a tunnel element being included 
in said security policy specification format. 
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37. (Original) The system according to claim 27, further comprising a root element, a protection 
element, a transform element, a group element, an identification element, a tunnel element, a local/remote 
identify clement, an ED type element, an ID definition element, a pre-shared key element, an IPsec 
proposal element, an IP sec ESP protocol element, an IPsec authentication header element, and an IPsec 
protection element being included in said security policy specification format. 

3 8, (Original) The system according to claim 27, further comprising said system for automatically 
configuring an IP security tunnel utilizing said security policy specification format. 

39 . (Original) The system according to claim 2 7, further comprising said system for comparing a 
first IP security tunnel to a second IP security timne , utilizing a first security policy specification format 
that is associated with said first IP security turmel and a second security policy specification format that is 
associated with a second IP security tunnel. 
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